chore(k8s-peterg): Switch to Vault secretstore
This commit is contained in:
parent
10b1c1efd0
commit
229739f938
SSH key fingerprint:
SHA256:B5tYaxBExaDm74r1px9iVeZ6F/ZDiyiy9SbBqfZYrvg
6 changed files with 56 additions and 21 deletions
|
|
@ -5,8 +5,8 @@ metadata:
|
|||
name: k8s-wheatley-cluster
|
||||
spec:
|
||||
secretStoreRef:
|
||||
name: vault-wheatley
|
||||
kind: ClusterSecretStore
|
||||
name: 1password-wheatley
|
||||
target:
|
||||
name: k8s-wheatley-cluster
|
||||
creationPolicy: Owner
|
||||
|
|
@ -24,7 +24,9 @@ spec:
|
|||
data:
|
||||
- secretKey: endpoint
|
||||
remoteRef:
|
||||
key: k8s-wheatley_clusterdefinition/endpoint
|
||||
key: secrets/managed/argocd/clusters/k8s-wheatley
|
||||
property: endpoint
|
||||
- secretKey: config
|
||||
remoteRef:
|
||||
key: k8s-wheatley_clusterdefinition/config
|
||||
key: secrets/managed/argocd/clusters/k8s-wheatley
|
||||
property: config
|
||||
|
|
|
|||
|
|
@ -6,11 +6,10 @@ metadata:
|
|||
namespace: argocd
|
||||
spec:
|
||||
secretStoreRef:
|
||||
name: vault-wheatley
|
||||
kind: ClusterSecretStore
|
||||
name: 1password-wheatley
|
||||
target:
|
||||
name: argocd-authentik-provider
|
||||
creationPolicy: Owner
|
||||
template:
|
||||
metadata:
|
||||
labels:
|
||||
|
|
@ -18,10 +17,13 @@ spec:
|
|||
data:
|
||||
- secretKey: dex.authentik.issuer
|
||||
remoteRef:
|
||||
key: authentik-argocd-provider/issuer
|
||||
key: secrets/managed/argocd/authentik-oidc-credentials
|
||||
property: issuer
|
||||
- secretKey: dex.authentik.clientID
|
||||
remoteRef:
|
||||
key: authentik-argocd-provider/client_id
|
||||
key: secrets/managed/argocd/authentik-oidc-credentials
|
||||
property: clientID
|
||||
- secretKey: dex.authentik.clientSecret
|
||||
remoteRef:
|
||||
key: authentik-argocd-provider/client_secret
|
||||
key: secrets/managed/argocd/authentik-oidc-credentials
|
||||
property: clientSecret
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue